https://github.com/chocapikk/cve-2017-9841

PHPUnit RCE
https://github.com/chocapikk/cve-2017-9841

Last synced: about 1 year ago
JSON representation

PHPUnit RCE

Host: GitHub
URL: https://github.com/chocapikk/cve-2017-9841
Owner: Chocapikk
Created: 2023-08-27T21:20:19.000Z (almost 3 years ago)
Default Branch: main
Last Pushed: 2023-08-27T21:56:28.000Z (almost 3 years ago)
Last Synced: 2025-04-13T17:08:02.394Z (about 1 year ago)
Language: Python
Size: 4.88 KB
Stars: 4
Watchers: 2
Forks: 1
Open Issues: 0
Metadata Files:
- Readme: README.md

Awesome Lists containing this project

README

## **VulnerabilityScanner for PHPUnit RCE**

A specialized vulnerability scanner developed to identify and interactively exploit the Remote Code Execution (RCE) vulnerability in PHPUnit's `eval-stdin.php`. This vulnerability affects PHPUnit versions before 4.8.28 and 5.x before 5.6.3 and allows remote attackers to execute arbitrary PHP code via HTTP POST data.

### **Description of the Vulnerability:**

The `Util/PHP/eval-stdin.php` file in PHPUnit, in versions prior to 4.8.28 and 5.x before 5.6.3, has a vulnerability allowing remote attackers to execute arbitrary PHP code. An attacker can exploit this by sending HTTP POST data starting with a `

ecosyste.ms

Data

Tools

Indexes

Applications

Experiments

Awesome

https://github.com/chocapikk/cve-2017-9841

Awesome Lists containing this project

README